Mageia Advisory: MGASA-2016-0095 - Updated squid packages fix security vulnerabilities

Updated squid packages fix security vulnerabilities

Publication date: 07 Mar 2016
Modification date: 07 Mar 2016
Type: security
Affected Mageia releases : 5
CVE: CVE-2016-2569 , CVE-2016-2570 , CVE-2016-2571

Description

Updated squid packages fix security vulnerability:

Due to incorrect bounds checking Squid is vulnerable to a denial of service
attack when processing HTTP responses (CVE-2016-2569, CVE-2016-2570,
CVE-2016-2571).

References

https://bugs.mageia.org/show_bug.cgi?id=17816
http://www.squid-cache.org/Advisories/SQUID-2016_2.txt
http://openwall.com/lists/oss-security/2016/02/26/2
https://www.cve.org/CVERecord?id=CVE-2016-2569
https://www.cve.org/CVERecord?id=CVE-2016-2570
https://www.cve.org/CVERecord?id=CVE-2016-2571

SRPMS

5/core

squid-3.4.13-1.4.mga5

Advisories » MGASA-2016-0095

Updated squid packages fix security vulnerabilities

Description

References

SRPMS

5/core